Senior Security Engineer, Governance Risk and Compliance
Coinhako
We are operating at the fast-moving frontier of the crypto ecosystem, where trust, speed, and ironclad security are paramount to our success. We aren't looking for a passive bureaucrat or a traditional checklist-checker. We need a sharp, highly autonomous Senior Engineer, GRC who genuinely loves the details, anticipates gaps before dashboards turn red, and possesses the human judgment to steer modern, tech-forward security frameworks. If you thrive in high-stakes environments and know how to balance real risk mitigation against empty paperwork, you’ll fit right in. What you'll be doing:
- Compliance lifecycle: Maintain ISO 27001 certification, prepare for SOC 2 Type 1 and 2, manage auditor relationships, and own evidence collection in Vanta. You know what's slipping before the dashboard turns red, and can forecast certification timelines confidently.
- Vulnerability management (as a program): Own the SLA layer — weekly dashboard, breach escalation, exception tracking, and monthly leadership view. Engineers fix the bugs; you ensure they fix them on time.
- Policy lifecycle: Annual reviews, new policies as scope expands, training rollout, attestation tracking, and exception requests. Reviews run through an adversarial AI pipeline today; you'll own the cadence and the human judgment inside it.
- People-ops security controls: Onboarding/offboarding evidence, access reviews, security awareness training, background-check tracking, and permission groups. Partner with HR on the workflow; own the auditable artifact.
- Vendor risk: Vendor inventory, pre-procurement assessments, and annual reassessments.
- Risk program: Maintain the risk register and run quarterly reviews.
- Data protection: DLP policy and tuning, data-classification programs, and PDPA partnership with Legal.
- Business continuity: Own the BCP/DR program — documentation, drills, and post-exercise improvements.
- 3–5 years in security or GRC program management, ideally at a fintech that grew through early stages.
- Hands-on experience running ISO 27001 and SOC 2 audits end-to-end, including auditor management.
- Deep fluency in Vanta (or Drata, with willingness to switch). You know where the platform helps and where you have to compensate manually.
- Confident representing the security program to security teams — both technically and as a trust signal.
- Strong written and verbal communication.
- Sound judgment on when a control gap is real risk vs. paperwork, and the ability to escalate to the right audience quickly.
- Strong interest in Cryptocurrency, Blockchain, Fintech, or Finance/Trading — you follow the space, understand why it's a uniquely hostile threat environment, and want to defend it.
- Proficient in English communication skill.
- MacBook or high-end laptop for working.
- Full coverage of social insurance.
- Premium health care for you and your family members.
- Full 100% salary during probationary period.
- Working in a professional, friendly, well-equipped workspace with both foreigners and Vietnamese.
- Extensive on job training; will always having chances to work with new emerging technologies.
- Friendly and fun start-up work culture.
Find out more about Coinhako here [ and don't forget to visit our Careers Page [
By submitting your application to us, you consent to the collection, use, disclosure and processing of your personal data in accordance with our privacy policy, which is accessible at [ policy]( policy).
- ...Cryptocurrency/Blockchain space? We are seeking an experienced Security Engineer (Redteam) to join our team. What you'll be doing: Conduct... ..., including the security is sue sun covered and level of risk. Consider the impact your 'attack' will have on the business...SuggestedFull timeNight shift
- ...and Systems o Logistics Understand and assist the quality engineers to assure product quality requirements are implemented and... ...insurance Health, social & unemployment insurance (following Government regulation) Company trip, New Year party, Team building Occasion...SeniorWork at office
- ...acclaimed and commercially successful music to delight and entertain fans around the world. Universal Music Vietnam in search of a Senior Business Development Executive to help maintaining business relationships with our partners as well as expanding the market....SeniorRemote jobLocal areaWorldwide
- ...Integrated Systems business. The IPQC Engineer will be a key part of... ...exceptional product quality performance in compliance with government and regulatory agency requirements and... ...process quality management and 2 years in Senior quality Engineer level. 3. Good...Senior
$36k - $42k
...We are looking for a Senior Full Stack Engineer to develop an address autocomplete & validation app for Shopify, focusing on Checkout UI Extensions... ...endpoints that integrate with Swiftcomplete APIs securely. Contribute to/Own (role dependent) Shopify Functions in...SeniorPermanent employmentWork at officeRemote workFlexible hours2 days per week- ...following processes are key to Design quality Engineer performance within Nextern and between... ...team on developing schedule, risk registers and actively supports business... ...social & unemployment insurance (following Government regulation) Company trip, New Year party...Senior
- ...choices, making transactions secure, simple, smart and accessible.... ...that help people, businesses and governments realize their greatest potential. Title and Summary Senior Specialist, Customer Success -... ...by managing fraud and risk, enhancing cybersecurity, and...SeniorFull timeWorldwide
- ...institutional-grade platform, providing secure and integrated solutions. Hex Trust... ...Summary We are seeking an experienced Senior DevOps Engineer to join our team and play a pivotal role... ...against real-world constraints of time, risk, and complexity. Transparent — you speak...SeniorFull timeWork at office
- ...developing: ~Opportunities to participate in internal training programs (online and offline). ~Clear career progression opportunities to Senior, Team Leader, Manager, and beyond. • Work environment & colleagues: ~Open-minded and supportive leaders who encourage...SeniorPermanent employmentFull timeWork at office
- ...-grade platform, providing secure and integrated solutions. Hex... ...We are looking for a Senior Mobile App Engineer who is passionate about building... .... Identify and surface risks, propose trade-offs, and keep... ...storage, and privacy compliance relevant to financial applications...SeniorFull timeWork at officeLocal area
- ...Term (Fixed Term) ABOUT THE JOB We are seeking motivated Senior Java Engineers who are passionate, results focused to take accountability... ...key skill areas such as Cloud Engineering, Digital, Data, Security and SREs (Site reliability engineers) Sponsored English course...SeniorFixed term contractWork at officeFlexible hours
- ...matters at a company where you matter. Your Impact As a senior engineer on the team, you will be intimately involved in the... ...support multiple teams/products ~ Understanding of platform security concerns: identity, access control, data encryption, and secure...SeniorWork at office
$44k - $60k
...developing, and operating microservices. Experience developing security-conscious web applications. Business level Japanese... ..., Vertex AI Infrastructure: Google Cloud, Google Kubernetes Engine, Anthos Service Mesh, Istio, Cloudflare, Argo Workflows Event...Full timeCasual workWork at officeRemote workTrial period1 day per week
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Senior Security Engineer, Governance Risk and Compliance. Be the first to apply!
